KSA On-site Employment

IT Security C&T is hiring an IAM/PAM PKI Engineer-Saudi National

Responsibilities

MFA. Cerebra mPass - Design, configure, and support Cerebra mPass MFA policies, integrations, and user onboarding.
Integrate MFA with enterprise systems (VPN, remote access, cloud apps, internal applications) using standard authentication protocols.
Monitor authentication flows, troubleshoot access issues, and improve reliability and user experience.
Prepare and execute the migration roadmap from mPass to Windows Hello for Business, including pilot planning, risk management, and cutover support.
PAM. CyberArk (Current). BeyondTrust (Future) - Operate and scale CyberArk (safes, platforms, CPM/PSM health, onboarding, rotations, access workflows).
Drive privileged account onboarding and operational hygiene (break glass, vault policies, RBAC, session controls).
Support evaluation and future rollout of BeyondTrust as needed (requirements, migration planning, operational model).
IGA. SailPoint (Future) - Support readiness for IGA adoption (joiner mover leaver flows, SoD concepts, connector requirements, campaign approach, reporting needs).
Contribute to implementation planning and operational runbooks once adopted.
PKI coordination. Thales HSM (Future) - Coordinate certificate lifecycle processes and integrations with the AD and PKI stakeholders.
Support discovery, inventory, renewal tracking, and certificate operational processes.
Participate in planning for HSM-backed PKI with Thales (key ceremony concepts, dual control, CRL/OCSP operational readiness).
Operations, compliance, and delivery hygiene - Ensure IAM, MFA, and PAM events are visible in SIEM. Maintain health KPIs and reduce alert noise.
Execute changes via ITSM with clear testing, validation, rollback, and post change checks.
Lead or support RCA for major incidents. Publish SOPs, runbooks, and hardening guidance.
Produce audit ready evidence aligned with KSA cybersecurity requirements, including access controls and privileged access governance.
Automation - Use PowerShell, Python, and REST APIs to automate onboarding, rotations, reporting, and operational checks.

Requirements

Strong troubleshooting, documentation, and audit evidence discipline are essential.

Planning long-term in Thailand?

Full relocation support, start to finish

From visa strategy to housing, banking, and schools for your family — SVBL plans and manages every detail of your move to Thailand so nothing falls through the cracks.

Complete relocation planning

Family visa & school enrollment

Banking & insurance setup

Cultural integration support

Plan your move

One partner for everything

About company

IT Security C&T is an innovative, fast-growing security consulting and training company. Our management team combined with our consultants and engineers work together to deliver comprehensive security solutions to our customers around the MENA region. IT Security C&T is continuously expanding its team of qualified professionals for a wide range of opportunities. Interested candidates are required to apply via our Career webpage on our website (www.itsecurityct.com)

All jobs at IT Security C&T Visit website

Job Details

Category other

Posted 4 months ago